ruạṛ
<?php /** * Update user record and current login if necessary * @version 0.9 * @author Robert Urquhart <programmer@activatedesign.co.nz> * @package WEP-CMS * @since caravancamping.co.nz */ /* * load site data and definitions, check for admin user * @var string $include_path - for easy global search/replace if include location changes */ $include_path = $_SERVER['DOCUMENT_ROOT'].'/admin/scripts-includes/'; $template_dir = $_SERVER['DOCUMENT_ROOT'].'/resources/template/'; require_once $include_path.'universal.php'; require_once $template_dir.'functions.php'; /** * check for module activation */ if(!MODULE_CUSTOMERS_INTERESTS) { getout(); exit; } /* * start the session (after includes so objects stored in $_SESSION are created properly) */ session_start(); $connID = connect_to_db(); /** * suhosin workaround - load session user data * @var object $customer */ $customer = user_load(); $n = new user; /** * get and clean form data into a temporary customer * @var string $email because we don't want to put this into $customer without validating it */ $n->name = clean_plain_data($_POST['Customer']); $n->email = clean_plain_data($_POST['Email']); $n->newsletter = 1; if(!is_email($n->email)) //|| ( && !is_valid_password($password)) { $message = 'Please enter a valid email address. Newsletter details have not been updated. <br />'; setcookie('formMessage', '<p>'.$m.'</p>', time()+30,'/'); getout(''); exit; } if(!isset($_SESSION['security_code']) || empty($_SESSION['security_code']) || !isset($_POST['auth']) || empty($_POST['auth']) || ($_SESSION['security_code'] != $_POST['auth'] ) ) { $m .= 'Incorrect security code, please try again.';//.$_SESSION['security_code'].' | '.$_POST['auth'];//debugging setcookie('formMessage', '<p>'.$m.'</p>', time()+30,'/'); //setcookie('contactformJson',$json,time()+30,'/'); getout(''); exit; } foreach($n->interest_list as $name => $label) { if(isset($_POST[$name])) { $n->interests[] = $name; } } if($customer->name == '') { $customer->name = $n->name; } if($customer->email == '' ) { $customer->email = $n->email; } if($customer->logged_in && $n->email == $customer->email) { $customer->newsletter = 1; $customer->interests = $n->interests; $customer->update(); $name = ($customer->name!='') ? html_entity_decode($customer->name,ENT_QUOTES) : $customer->email; $subject = 'Customer account for '.$name.' updated at '.SITE_FROM_NAME.' (add to newsletter or update)'; $body = $name.' asked to be added to your newsletter. You may view and manage this account at http://'.SITE_ROOT.'/admin/customer-manage.php?customer='.$customer->user_id; send_email($body,$subject); $message .= 'Your details have been updated'; setCookie('formMessage','<p class="message">'.$message.'</p>',time()+30,'/'); getout('',select_one('page_data','path','page_type','customers')); exit; } elseif($n->email == $customer->email) { $name = ($customer->name!='') ? html_entity_decode($customer->name,ENT_QUOTES) : $customer->email; $subject = $name.' asked to be added to your newsletter at at '.SITE_FROM_NAME; if($customer->newsletter && $n->newsletter) //changing interests { $subject = $name.' asked to update their newsletter interests at at '.SITE_FROM_NAME; $message .= 'Your interests have been updated.'; setCookie('formMessage','<p class="message">'.$message.'</p>',time()+30,'/'); } $body = 'Email address: '.$n->email.' Interests: '; foreach($n->interests as $i) { $body .= $i.' '; } send_email($body,$subject); //$message .= 'You have been added to our newsletter.'; //setCookie('formMessage','<p class="message">'.$message.'</p>',time()+30,'/'); $customer->interests = $n->interests; $customer->newsletter = 1; user_save($customer); getout(''); exit; } elseif($cust_id = select_one('users','user_id','email',$n->email)) { $u = new user($cust_id); $u->newsletter = 1; $u->interests = $n->interests; $u->update(); $name = ($u->name!='') ? html_entity_decode($u->name,ENT_QUOTES) : $u->email; $subject = 'Customer account for '.$name.' updated at '.SITE_FROM_NAME.' (add to newsletter or update interests)'; $body = $name.' asked to be added to your newsletter. You may view and manage this account at http://'.SITE_ROOT.'/admin/customer-manage.php?customer='.$u->user_id; $body .= ' Email address: '.$u->email.' Interests: '; foreach($u->interests as $i) { $body .= $i.' '; } send_email($body,$subject); user_save($n); //use submitted name in case it differs from account name associated with this email $message .= 'Your newsletter settings have been updated.'; setCookie('formMessage','<p class="message">'.$message.'</p>',time()+30,'/'); getout(''); exit; } else //using different name/ email than previously supplied in from or checkout { $name = ($n->name!='') ? html_entity_decode($n->name,ENT_QUOTES) : $n->email; $subject = $name.' asked to be added to your newsletter at at '.SITE_FROM_NAME; $body = 'Email address: '.$n->email.' Interests: '; foreach($n->interests as $i) { $body .= $i.' '; } send_email($body,$subject); $customer->name = $n->name; $customer->email = $n->email; $customer->interests = $n->interests; $customer->newsletter = 1; user_save($customer); //$message .= 'You have been added to our newsletter.'; //setCookie('formMessage','<p class="message">'.$message.'</p>',time()+30,'/'); getout(''); exit; } getout(''); exit; ?>
cải xoăn